Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
Unknown

CVE-2019-11457

Disclosure Date: August 27, 2019 (last updated November 27, 2024)
Multiple CSRF issues exist in MicroPyramid Django CRM 0.2.1 via /change-password-by-admin/, /api/settings/add/, /cases/create/, /change-password-by-admin/, /comment/add/, /documents/1/view/, /documents/create/, /opportunities/create/, and /login/.
0
0
Attacker Value
Unknown

CVE-2018-16552

Disclosure Date: September 05, 2018 (last updated November 27, 2024)
MicroPyramid Django-CRM 0.2 allows CSRF for /users/create/, /users/##/edit/, and /accounts/##/delete/ URIs.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0